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Thomson Multimedia Licensino 
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P.O. Box 5312 
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ETATS-UNiS D'AMERIQUE 


Date of mailing (day/month/year) 
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Applicant's or agent's file reference 
RCA89181 


IMPORTANT NOTIFICATION 


International application No. 

PCT/US99/19700 


International filing date (day/month/year) 

31 August 1999 (31.08.99) 



1. The following indications appeared on record concerning: 

X the applicant the inventor the agent | | the common representative 


Name and Address 

THOMSON CONSUMER ELECTRONICS, INC. 
10330 North Meridian Street 
Indianapolis, IN 46290-1024 
United States of America 


State of Nationality 

US 


State of Residence 
US 


Telephone No. 


Facsimile No. 


Teleprinter No. 


2. The International Bureau hereby notifies the applicant that the following 
| | the person X the name X the address 


change has been recorded c 
X the nationality 


oncerning: 

X the residence 


Name and Address 

THOMSON LICENSING S.A. 
46, Quai A. Le Galo 
F-92648 Boulogne Cedex 
France 


State of Nationality 
FR 


State of Residence 
FR 


Telephone No. 


Facsimile No. 


Teleprinter No. 


3. Further observations, if necessary: 

Please note that the agent's post code has been amended accordingly. 


4. A copy of this notification has been sent to: 
pX] the receiving Office [^] the designated Offices concerned 
| | the International Searching Authority [~X~| the elected Offices concerned 
[ | the International Preliminary Examining Authority | | other: 
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/Assistant commissioner tot ratents 
United States Patent and Trademark 
Office 
Box PCT 

Washington, D.C.20231 
ETATS-UNIS D'AMERIQUE 

in its capacity as elected Office 


Date of mailing (day/month/yea t)z 
18 May 2000(18.05.00) 




International application No. 
PCT/US99/19700 


Applicant's or agent's file reference 
RCA89181 


International filing date (day/month/year) 
31 August 1999 (31.08.99) 


Priority date (day/month/year) 
31 August 1998 (31.08.98) 


Applicant 

ESKICIOGLU, Ahmet, Mursuit et al 



1. The designated Office is hereby notified of its election made: 

| X | in the demand filed with the International Preliminary Examining Authority on: 

30 March 2000 (30.03.00) 



| | in a notice effecting later election filed with the International Bureau on: 



2. The election 
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was not 



made before the expiration of 19 months from the priority date or, where Rule 32 applies, within the time limit under 
Rule 32.2(b). 
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THE INTERNATIONAL PRELIMINARY 
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(PCT Rule 71.1) 


Date of mailing 

(day/montMyear) 1 9.05.2000 


Applicant's or agent* s file reference 
RCA89181 


IMPORTANT NOTIFICATION 


International application No. 
PCT/US99/19700 


International filing date (day/month/year) 
31/08/1999 


Priority date (day/month/year) 
31/08/1998 


Applicant 

THOMSON CONSUMER ELECTRONICS, INC. et al. 



1 . The applicant is hereby notified that this International Preliminary Examining Authority transmits herewith the 
international preliminary examination report and its annexes, if any, established on the international application. 

2. A copy of the report and its annexes, if any, is being transmitted to the International Bureau for communication 
to all the elected Offices. 



3. Where required by any of the elected Offices, the International Bureau will prepare an English translation of the 
report (but not of any annexes) and will transmit such translation to those Offices. 



4. REMINDER 

The applicant must enter the national phase before each elected Office by performing certain acts (filing 
translations and paying national fees) within 30 months from the priority date (or later in some Offices) (Article 
39(1)) (see also the reminder sent by the International Bureau with Form PCT/IB/301). 

Where a translation of the international application must be furnished to an elected Office, that translation must 
contain a translation of any annexes to the international preliminary examination report. It is the applicant's 
responsibility to prepare and furnish such translation directly to each elected Office concerned. 

For further details on the applicable time limits and requirements of the elected Offices, see Volume II of the 
PCT Applicant's Guide. 
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Applicants or agent's file reference 
RCA89181 


See Notification of Transmittal of International 
FOR FURTHER ACTION Preliminary Examination Report (Form PCT/IPEA/416) 


International application No. 
PCT/US99/19700 


International filing date (day/month/year) 
31/08/1999 


Priority date (day/month/year) 
31/08/1998 


International Patent Classification (IPC) or nal 
H04N5/913 


ional classification and IPC 


Applicant 

THOMSON CONSUMER ELECTRONICS, INC. et al. 



1 . This international preliminary examination report has been prepared by this International Preliminary Examining Authority 



and is transmitted to the applicant according to Article 36. 



2. This REPORT consists of a total of 5 sheets, including this cover sheet. 

□ This report is also accompanied by ANNEXES, i.e. sheets of the description, claims and/or drawings which have 
been amended and are the basis for this report and/or sheets containing rectifications made before this Authority 
(see Rule 70.16 and Section 607 of the Administrative Instructions under the PCT). 

These annexes consist of a total of sheets. 



3. This report contains indications relating to the following items: 



I 


IS 


Basis of the report 


li 


□ 


Priority 


111 


□ 


Non-establishment of opinion with regard to novelty, inventive step and industrial applicability 


IV 


□ 


Lack of unity of invention 


V 




Reasoned statement under Article 35(2) with regard to novelty, inventive step or industrial applicability; 






citations and explanations suporting such statement 


VI 


□ 


Certain documents cited 


VII 




Certain defects in the international application 


VIII 


□ 


Certain observations on the international application 



Date of submission of the demand 



30/03/2000 



Date of completion of this report 



19.05.2000 



Name and mailing address of the international 
preliminary examining authority: 
European Patent Office 

D-80298 Munich 
Tel. +49 89 2399 - 0 Tx: 523656 epmu d 

Fax: +49 89 2399 - 4465 



Authorized officer 
Loeser, E 

Telephone No. +49 89 2399 8482 
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INTERNATIONAL PRELIMINARY 

EXAMINATION REPORT International application No. PCT/US99/19700 

I. Basis of the report 

1 . This report has been drawn on the basis of (substitute sheets which have been furnished to the receiving Office in 
response to an invitation under Articie 14 are referred to in this report as "originally filed" and are not annexed to 
the report since they do not contain amendments.): 

Description, pages: 

1-12 as originally filed 

Claims, No.: 

1 -20 as originally filed 

Drawings, sheets: 

1-3 as originally filed 

2. The amendments have resulted in the cancellation of: 

□ the description, pages: 

□ the claims, Nos.: 

□ the drawings, sheets: 

3. □ This report has been established as if (some of) the amendments had not been made, since they have been 

considered to go beyond the disclosure as filed (Rule 70.2(c)): 

4. Additional observations, if necessary: 
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International application No. PCT/US99/1 9700 



V, Reasoned statement under Article 35(2) with regard to novelty, inventive step or industrial 
applicability; citations and explanations supporting such statement 



1. Statement 
Novelty (N) 

Inventive step (IS) 



Yes: 
No: 

Yes: 
No: 



Industrial applicability (I A) Yes: 

No: 



Claims 1 -20 
Claims 

Claims 1-20 
Claims 

Claims 1 -20 
Claims 



2. Citations and explanations 
see separate sheet 

VII. Certain defects in the international application 

The following defects in the form or contents of the international application have been noted: 
see separate sheet 
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INTERNATIONAL PRELIMINARY International application No. PCT/US99/1 9700 
EXAMINATION REPORT - SEPARATE SHEET 



1. Concerning Section V - Articles 33(2) and 33(3) PCT 

The following documents are cited: 
Dl: EP-A-0 912 952; 
D2: EP-A-0 763 936; 
D3 : EP-A-0 714 204; 
D4: EP-A-0 858 184; 
D5: FR-A-2 732 537. 

Dl discloses recording of encrypted digital data, wherein 
scrambled data accompanied by an encrypted control word is 
received, the control word is decrypted and re-encrypted to a 
different control word. 

In the context of digital video recording, D2 (Figs. 10, 11 and 
related text passages) discloses reception of scrambled data 
accompanied by encrypted control information, decrypting and 
modifying the control information, and re-encrypting the 
modified control information. 

In the same context, D3 (abstract) discloses reception of a 
scrambled bitstream accompanied by an encrypted keystream, whe- 
rein in a recording mode the keystream is accordingly modified 
and recorded in an encrypted format mixed with the bitstream. 

D4 (abstract) discloses replacing an entitlement control message 
(ECM) received along with scrambled digital data with a trans- 
formed entitlement control message. 

D5 also discloses re-encrypting control information received 
along with digital video data. 

2.1. Claim 1 

None of the presently available documents appears to disclose 
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# 

INTERNATIONAL PRELIMINARY International application No. PCT/US99/1 9700 
EXAMINATION REPORT - SEPARATE SHEET ___ s 

features (b) and (c) of claim 1 on file, which features pertain 
to attaching a data item indicative of a copy status of a pro- 
gram to a received encrypted control component, whereafter 
encryption is applied to the encrypted control component with 
the data item attached to generate a nested control component. 
Accordingly, claim 1 meets the requirements of novelty and 
inventive step set out in Articles 33(2) and 33(3) PCT. 



2.2. Claims 12, 20 

Claims 12 and 20 provide the inverse of the method defined in 
claim 1 and thus are linked to the novel and inventive concept 
of claim 1. Accordingly, claims 12 and 20 meet the requirements 
of novelty and inventive step set out in Articles 33(2) and 
33 (3) PCT. 

3. Concerning Section VII s Description and formal belongings 



a) 



The additional subject-matter provided by claims 8 and 19 
pertains to features of an apparatus rather than to method 
steps. Accordingly, doubt is cast upon the claims' intended 
scope of protection, contrary to the requirements set out in 
Art. 6 PCT. 



b) 

Contrary to the requirements of Rule 5.1(a) (ii) PCT, the re 
vant background art disclosed in the documents Dl to D5 
identified above is not mentioned in the description, nor a 
these documents identified therein. 
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RCA89181 


FOR FURTHER 366 Notification of Transmittal of International Search Report 
ACTION (Form PCT/ISA/220) as well as, where applicable, Item 5 below. 


International application No. 
PCT/US 99/19700 


International filing date (day/month/year) 

31/08/1999 


(Earliest) Priority Date (day/month/year) 

31/08/1998 


Applicant 

THOMSON CONSUMER ELECTRONICS, INC. et al . 



This International Search Report has been prepared by this International Searching Authority and Is transmitted to the applicant 
according to Article 1 8. A copy Is being transmitted to the International Bureau. 

This International Search Report consists of a total of 3 sheets. 

[X] It Is also accompanied by a copy of each prior art document cited in this report 



1 . Basis of the report 

a. With regard to the language, the International search was carried out on the basts of the International application In the 
language In which It was filed, unless otherwise Indicated under this Item. 

I I the International search was carried out on the basis of a translation of the International application furnished to this 
Authority (Rule 23.1(b)). 

b. With regard to any nucleotide and/or amino acid sequence disclosed In the international application, the International search 
was carried out on the basis of the sequence listing : 

| | contained In the International application In written form. 

filed together with the International application In computer readable form, 
furnished subsequently to this Authority In written form, 
furnished subsequently to this Authority In computer readble form. 



2. 
3. 



□ 
□ 
□ 
□ 

□ 



□ 
□ 



the statement that the subsequently furnished written sequence listing does not go beyond the disclosure In the 
International application as filed has been furnished. 

the statement that the Information recorded In computer readable form Is Identical to the written sequence listing has been 
furnished 

Certain claims were found unsearchable (See Box I). 
Unity of invention is lacking (see Box II). 



4. With regard to the title, 

[X] the text Is approved as submitted by the applicant. 

| | the text has been established by this Authority to read as follows: 



5. With regard to the abstract, 

[T] the text Is approved as submitted by the applicant. 

□ the text has been established, according to Rule 38.2(b), by this Authority as It appears In Box III. The applicant may, 
within one month from the date of mailing of this International search report, submit comments to this Authority. 

6. The figure of the drawings to be published with the abstract Is Rgure No. ?h ) r 



[X| as suggested by the applicant. Q None of the figures. 

[ | because the applicant failed to suggest a figure. 

| | because this figure better characterizes the Invention. 
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A method for managing a global copy protection system for home networks is provided. Particularly, the defined method protects 
copyrighted digital content from unauthorized copying as it is transmitted across digital interfaces, provided a practical way of creating 
legitimate copies of broadcast and prerecorded content, and prevents illegitimate copies from being viewed. 
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sivotve an Inventive step when the document Is taken alone 
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A COPY PROTECTION SYSTEM FOR HOME NETWORKS 



Field of the Invention 

5 This invention concerns a system that may be used to manage 

access to a copy of a scrambled digital stream, such as a program or event. The 
scrambled digital stream is not descrambled until it is determined that the copy of 
the program is legitimate. 

10 Background of the Invention 

Today's NTSC televisions receive broadcast services from a variety 
of service providers. Some television receivers are capable of receiving 
unscrambled information or programs from broadcast, satellite and cable 
15 networks. Traditionally, cable networks or digital satellite systems providing 

scrambled or encrypted programs usually require a separate stand-alone device 
(e.g., a set-top box) to descramble or decrypt the program. These set-top boxes 
may utilize a removable smart card which contain the necessary decrypting 
algorithms and keys. 

20 

In the near future, digital televisions (DTVs) and digital set-top 
boxes (STBs) will be capable of receiving digital broadcast, cable and satellite 
services. Therefore, the protection of digital video and audio content has become 
one of the major issues for the Information Technology (IT), Consumer 
25 Electronics (CE) and Motion Picture (MP) industries. Analog services can be 
protected reasonably well using a signal distortion mechanism. As a similar 
solution is not possible for digital content, a new approach for delivering digital 
audio and video content with adequate protection against illegal duplication is 
needed. 

30 

Summary of the Invention 

The present invention resides, in part, in recognition of the 
described problem and, in part, in providing a solution to this problem. A method 

35 is described for preventing the use of unauthorized copies of digital content (e.g., 
movies, etc.). The content, presented in MPEG-2 Transport Stream format, is 
scrambled using a common algorithm before release. The scrambling keys and 
other data are included in the Entitlement Control Messages (ECMs) that may be 
encrypted with the public key of a renewable security device (for example, a 

40 removable smart card). The other data includes the price and source (broadcast 
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or pre-recorded) of the content (or program) and Copy Control Information (CCI). 
Before recording a program, the recording device, connected to the home 
network, first checks if the program is scrambled. If scrambled content is 
detected, the recorder attaches a "copy-mark" or "data item" to each ECM in the 
5 new copy and encrypts them with the public key. The data item indicates that the 
restricted program (actually, that the audio/video component) has been copied. 
In general, every time a scrambled content is copied, its ECMs are encrypted 
once again. This process, called ECM nesting, allows the renewable security 
device coupled to the display unit (e.g., Digital TV) to distinguish between 
10 legitimate and illegitimate copies. 

An event or program as described herein comprises one of the 
following: (1) audio/visual data such as a movie, weekly 'television" show or a 
documentary; (2) textual data such as an electronic magazine, paper, or weather 
15 news; (3) computer software; (4) binary data such as images or (5) HTML data 
(e.g., web pages). A service provider may comprise any provider of an event or 
program, for example, traditional broadcast television networks, cable networks, 
digital satellite networks, providers of electronic list of events, such as electronic 
program guide providers, and in certain cases internet service providers. 

20 

A system in accordance with the present invention may utilize public 
key technology. Typically, such a system utilizes one public key (corresponding 
to a smart card) for all service providers. Each smart card has stored therein a 
secret private key that can decrypt messages encrypted by the public key. The 

25 service provider sends a conditional access (CA) entitlement message (i.e., an 
Entitlement Control Message or ECM) in the bit stream encrypted by the public 
key that may contain the name of the service provider, and the name, time, and 
cost of the program. This message is decrypted by the smart card, and the 
appropriate information is stored therein. In one embodiment, the smart card may 

30 have a certain amount of credit for purchases that has been enabled by a bank or 
from a service provider. As long as the limit is not exceeded, services can be 
purchased by the user. At some appropriate preprogrammed time, the smart 
card causes the device (e.g., set-top box) to automatically place a telephone call 
to the CA center. Using a secure channel, the CA center in cooperation with a 

35 bank receives billing information from the smart card and provides additional 
credit. The bank forwards the information and credits the appropriate sen/ice 
provider. 

Generally, the present invention defines a method for managing 
40 access (i.e., viewing) to a copy of a restricted (or scrambled) broadcast or 
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transmitted program. In accordance with one aspect of the present invention, a 
method for copying a program having a scrambled program content component 
(for example, an audio/video program) and an encrypted control component (e.g., 
ECM) is defined. The method comprises receiving the program in a recording 
5 apparatus, and attaching a data item to the encrypted control component. The 
data item is used to indicate that the program has been copied. Finally, the 
encrypted control component and the data item together are encrypted to 
generate a nested control component. 

10 In accordance with another aspect of the present invention, a 

method for managing access to a copy of a restricted program comprises 
receiving the restricted program in a processing apparatus. The nested control 
component is decrypted to obtain the encrypted control component and the data 
item. The encrypted control component is then decrypted to obtain a 

15 descrambling key and copy control information. The data item and the copy 
control information is compared to determine if the copy is authorized (or valid) 
and, if authorized, the program contentcomponent is descrambled using the 
descrambling key. 

20 In accordance with yet another aspect of the present invention, the 

method for managing access to the recorded copy of a restricted program 
employs a smart card coupled to a video processing apparatus. Particularly, the 
method comprises transferring a cash reserve and entitlements to the smart card, 
receiving the recorded copy of the restricted program in the smart card, obtaining 

25 a descrambling key, copy control information and purchase information, 

comparing the copy control information and the data item to determine if said 
copy is authorized and verifying that the cost of the restricted program is less than 
the stored cash reserve. The cost of the restricted program is then deducted from 
the stored cash reserve, and the audio/video component is descrambled using 

30 the descrambling key. It is within the scope of the invention to substitute a "time 
model" for the "cost model", that is, the amount of time that a program is 
authorized to be viewed may be controlled. 



35 



These and other aspects of the invention will be explained with 
reference to a preferred embodiment of the invention shown in the accompanying 
Drawings. 
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Brief Description of the Drawing 

Figure 1 is a block diagram illustrating a home network comprised of 
various digital devices that may receive scrambled content from a plurality of 
5 sources; 

Figure 2a is a diagram defining a typical entitlement control 
message (ECM); 

10 Figure 2b is a diagram defining a nested ECM in accordance with 

one embodiment of the present invention; 

Figure 2c is a diagram defining an Extended ECM in accordance 
with another embodiment of the present invention; and 



15 



20 



Figure 3 is a block diagram illustrating a typical home network 
employing the present invention. 

Detailed Description of the Drawing 



The present invention provides a conditional access system, which 
may be utilized to manage access to copies of restricted programs, for example, 
scrambled (or encrypted) programs. A conditional access system may be 
integrated into a renewable security device, such as a smart card complying to 
25 the National Renewable Security Standard (NRSS), EIA-679 Part A or Part B. 
The conditional access system, when implemented within a digital television 
(DTV), set-top box (STB), or the like, permits a user to view only legitimate copies 
of the scrambled program. The functionality of the smart card may be embedded 
within the DTV or STB. 

30 

A Certificate Authority (not shown) issues digital certificates and 
public and private key pairs, which are used as explained below. It is within the 
scope of this invention that the role of the certificate authority may be performed 
by the sen/ice providers in collaboration with the manufacturers of the devices. A 
35 billing center may be utilized to manage the user's accounts; updated information 
is provided as users make arrangements to purchase additional services and as 
these services are consumed or used. 

Broadcasters are responsible for delivering: (1) the services, and (2) 
40 the entitlement messages (entitlement control messages) that allow any user to 
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buy those services. The broadcast channel is used only to deliver the services 
and information for access to these services. All the remaining transactions are 
carried out using a return channel (i.e., a modem and a phone connection or a 
cable modem). The present conditional access system may be based on E-cash 
5 card loading. A user pre-loads his/her card with a certain amount of cash (from 
debit or credit accounts), and then uses the card to buy services as described 
below. 



If a return channel connection is not available to communicate with 
10 the CA server, then loading cash to the card requires the user to either access a 
device with back-channel support or go to a particular location (bank, ATM, 
vendor's regional office) to have the card loaded. The CA operators act like the 
card holder's or user's bank, while the billing center acts like the merchant's bank. 
The fixed amount of "cash" loaded into the renewable security device, for 
15 example, a removable smart card or conditional access module, can now be used 
to pay for services offered by a broadcaster or for the viewing of a recorded 
program. Whichever cash transfer mechanism is employed, the user requests a 
transfer of a specific amount of money to the CA card from a credit or debit 
account. 

20 

Once money is loaded into the card, a user can buy any number of 
services offered by broadcasters or, perhaps, may be used to purchase "viewing 
rights" for the recorded program. Each purchase reduces the amount of available 
money in the card by the service price. The services offered by broadcasters can 

25 be classified into two categories; PPV events and packages. An event is a TV 
program with an allocated slot in a program guide, and a package is simply a 
collection of events. Examples of packages are (1) all the football games in a 
given season, (2) the late Sunday movies on one or more ATSC virtual channels, 
(3) subscription to a particular virtual channel such as HBO. All events usually 

30 have one or more of their audiovisual streams scrambled using a common or 
shared symmetric key algorithm. 



Upon purchase of an event or package, a record may be stored in 
the smart card which may be later transferred to the CA vendor. Once the stored 
35 purchase information is sent to the CA database, the CA vendor can pay 
broadcasters for the provided services. 



40 



The security of the system may be based on standard and widely 
accepted public key and symmetric key algorithms. For example, suitable 
algorithms include RSA for public key encryption and triple DES and/or single 
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DES for symmetric key scrambling. In an exemplary system utilizing these 
algorithms, there is a global RSA public/private key pair, Kpub/Kpri, for the entire 
system. The public key is shared by all the broadcasters, and the corresponding 
private key is placed in the tamper-proof NRSS-based smart cards, distributed by 
5 the CA providers to the consumers. This public key is used to protect the ECMs 
generated at the head-end. It is within the scope of this invention that a 
scrambling algorithm may be a cipher other than DES. 

Symmetric key cryptography involves the use of the same key for 
10 both encryption and decryption. The foundation of public-key cryptography is the 
use of two related keys, one public and one private. The private key is a secret 
key, and it is computationally unfeasible to deduce the private key from the public 
key, which is publicly available. Anyone with a public key can encrypt a message, 
but only the person or device having the associated and predetermined private 
15 key can decrypt it. 

A digital home network 10, as depicted in Figure 1 , is a cluster of 
digital audio/visual (A/V) devices including set-top-boxes 12, TVs 14, VCRs 16, 
DVD players 18 and general-purpose computing devices (not shown) such as 

20 personal computers. Several digital interfaces will be available for device 

interconnection within home networks. For example, EIA-775 DTV 1394 Interface 
Specification defines a specification for a baseband digital interface to a DTV 
which is based on the IEEE 1394 Standard for High Performance Serial Bus. The 
IEEE 1394 serial bus allows digital devices such as televisions, VCRs, DVD 

25 players and set-top-boxes to communicate with each other. It provides two types 
of transport: asynchronous transport for "guaranteed delivery", and the optional 
isochronous transport for "guaranteed timing." (Isochronous channels are 
required for multimedia applications.) EIA-761 DTV Remodulator Specification 
with Enhanced OSD Capability and EIA-762 DTV Remodulator Specification 

30 defines minimum specifications for a one-way data path utilizing an 8 VSB and a 
16 VSB remodulator, respectively, in compliance with ATSC Standard A/53 
Annex D. 

The present invention defines a new paradigm for copy protection 
35 within a digital home network. This paradigm allows the copying of digital content 
that may either be broadcast or pre-corded. The copy is checked for legitimacy 
before display. 

Further, as depicted in Figure 1, original copyrighted content is 
40 delivered to the home network 1 0 from a number of sources. It may be 
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transmitted via satellite 20, terrestrial 22 or cable 24 systems or recorded on a 
digital tape 26 or a DVD 28. Transmitted or recorded on media, the content can 
be identified as "never-copy", w copy-once w and "free-copy". These three states 
are represented using the Copy Generation Management System (CGMS) bits. 
5 (The CGMS bits are a part of the CCI.) All the A/V devices in the cluster should 
obey "playback control", "record control" and "one-generation control" rules as 
summarized below. 





S8SI 










Play. 


Play. 


Play. 


Play. 




Do not 
record 


Record and change 
content type to "no-more- 
copies" in the new copy. 


Do not 
record. 


Record. 



10 A copy protection system must protect the transmission of the 

audio/video content from one A/V device to another, and must protect the storage 
of the audio/video content. The present invention defines solutions to both of 
these problems by "keeping content scrambled until it is displayed". It allows 
recording of scrambled content, but prohibits viewing if the content is not 

15 legitimate (i.e., not an original or a one-generation copy). This is in contrast with 
the recording rules as defined in the above table. 

Particularly, Figure 1 illustrates a typical home network comprised of 
various digital audio/video devices capable of receiving digital content (e.g., a 
20 movie) where the present invention may be employed. The digital content is 

encoded with MPEG-2 Transport Stream (TS) format and broadcast together with 
the Entitlement Control Messages (ECMs). An ECM (see Figure 2a) is a 
cryptogram of the control word (i.e., descrambling key) and the access conditions. 

25 The STB or DTV receives the scrambled A/V stream from a source 

(broadcast head-end or player) and transmits it directly to a smart card. The 
smart card (SC) 30 is inserted into, or coupled to, a smart card reader (not 
shown); an internal bus interconnects the STB or DTV and the smart card thereby 
permitting the transfer of data therebetween. Such smart cards include, for 

30 example, ISO 7816 cards complying with National Renewable Security Standard 
(NRSS) Part A or PCMCIA cards complying with NRSS Part B. As stated above, 
this inventive concept is not limited to smart cards per se, but can be employed 
with any renewable security device. Conceptually, when a smart card is coupled 
to a smart card reader, the functionality of the smart card may be considered to 
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be a part of the functionality of the digital television, thus removing the 
"boundaries" created by the physical card body of the smart card. 

The smart card checks if the content is legitimate, recovers the DES 
5 keys, and descrambles the stream after checking the entitlement. (An on-screen 
display message (OSD) prompts the consumer to initiate a purchase offer just 
before the movie starts.) A subscription entitlement is stored in the card, but an 
event entitlement is transmitted with the event and used to generate the purchase 
offer). 

10 

Two unique, but related, methods for differentiating copies from an 
original and then verifying if the copy is legitimate prior to enabling the user to 
view the copy are defined below. In either method when the scrambled program 
is to be recorded, the first thing the recording device (e.g., a DVCR or a DVD 

15 recorder) does is to verify whether the program is scrambled. This may be 

achieved by checking for ECMs which are identified by their packet identification 
(PID) in the packet header. One alternative would be to check the Transport 
Scrambling Control (TSC) bits in the transport packet header. Another method 
would be to ascertain whether the program is scrambled as described below. The 

20 MPEG video syntax includes byte-aligned 32 bit fields called "start codes" that 
indicate synchronizing points in the bit stream. For example, there are "picture 
start codes" (Ox 00 00 01 00) at the beginning of each frame in the MPEG video 
bit stream. These frames can occur at 60, 50, 30, or 24 frames per second (fps). 
Therefore, a simple test would be to look for picture start codes in the bitstream. 

25 If the rate of picture start codes per second is close to one of the possible rates, 
then it is reasonable to assume that the bit stream is not encrypted. 

In one embodiment of the present invention if the content is 
scrambled, the recorder encrypts the ECMs using the global public key. Before 

30 encryption takes place, the recorder attaches a mark (or data item) (see Figure 
2b) to each ECM as an indication of copying. In general, every time a scrambled 
movie is copied, its ECMs are encrypted once again, a process that may be 
referred to as "nesting". This allows the smartcard to determine how many times 
the original movie has been copied. The following example (wherein GPK is the 

35 Global public key, E is the Encryption process, CW is the Control word (the key 
for descrambling) and ECM contains CW, CCI, source of the content and other 
data) detects an illegitimate copy and prevents the display thereof. 

Assume an ECM of the movie has the form: E G pk(CW, never-copy). 
40 If a recorder receives this ECM, it will transform it to: E GPK [E G pk(CW, never-copy), 
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copy-mark)]. The movie with this nested ECM will be the output of the recording 
process. When a user attempts to view it, the smart card will detect that it is a 
copy of a "never-copy" content and will not allow display. If the movie is a "copy- 
once" content, the ECM will be in the form: E G pk [E GPK (CW, copy-once), copy- 
5 mark)] in the copy. This is an indication of a legitimate copy and the smart card 
will allow viewing. However, if a copy of a copy is created, the ECM will have two 
layers of nesting, for example, [E G pk {E gpk [E GP k(CW, copy-once), copy-mark)], 
copy-mark}], and the copy will be detected to be illegitimate. 

10 One way to increase the security of the copy protection system is to 

use a local public key for recording purposes. This requires a smart card with a 
unique public/private key pair. For copying a movie, the smart card is coupled to 
the VCR and provides the public key. The public key is then used to encrypt the 
ECMs to create a copy that can be played only with the corresponding unique 

15 private key. 

Another option to increase the security of the system is to attach a 
unique recorder ID together with the copy-mark during the ECM nesting process. 
This additional information creates a binding between the copy and the recorder. 
20 Further, both the recorder and the smart card would have the same recorder ID. 
Therefore, viewing of the copy would only be possible with the smart card having 
the recorder ID. 

Every copyrighted (and encrypted) digital content shall be available 
25 to be copied on any recorder. The created copy, if legitimate, can then be viewed 
according to the rules of an established payment system. If, for example, a DTV 
receives a scrambled program without a nested ECM, then the DTV would treat 
the program as if it was an original scrambled program and not a copy. That is, 
the DTV would allow the program to be viewed. However, if the user wished to 
30 make a copy of the "original program", then the ECM and a data item would 
together be encrypted in accordance with the present invention. 

In an alternate embodiment of the present invention, the ECMs are 
extended to contain the CGMS bits and access rights as well as control words. 

35 Every time copyrighted content (e.g., a movie) is recorded, the extended ECMs 
(XECMs) are modified through a one-way, irreversible transformation (for 
example, hashing) to distinguish copies from the original. A function /from a set 
X to a set Y is called a one-way function if f (x) is easy to compute for all x e X but 
for essentially all ye lm( f ), it is computationally infeasible to find any xe X such 

40 thatf(x)=y. 
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When the smart card receives the XECMs, it processes them 
depending on the type of the system. Two functionally distinct systems can be 
accommodated within this architecture: Conditional Access (CA) systems and 
Copy Protection (CP) systems. 

(i) CA system: The smart card is a component of a CA system. Before 
viewing is allowed, the smart card checks how many times the XECMs are 
modified and responds according to the pre-defined rules of the CA 
system. 

(ii) CP system: The smart card is a component of a CP system. The 
functionality of the smart card is limited. It checks the legitimacy of the 
content and prevents the viewing of illegitimate copies. 

15 The processing of XECMs will be explained using the following example and 
referring to Figures 2C and 3. Assume a movie is being copied on a DVCR. Its 
XECM syntax is defined to be XECM = E K (CW, D/T, content type, x 0 ),x u where x 0 = 
Xi, x M = /(Xj) for i > 0 and E is the encryption process, K is the encryption key, CW 
is the control word, D/T is the date and time stamp, x 0 is a random number, and f is 

20 a one-way function. 

(a) Content type is "never-copy": 

Recorder input: Ek(CW, D/T, "never-copy", x 0 ), x^ 
Recorder output: E K (CW, D/T, "never-copy", x 0 ), x 2 
25 When the user attempts to view the copy, the card will, after decrypting the 
XECM, compare Xo and x 2 . If they are not equal, display will not be allowed. 

(b) Content type is "copy-once": 

Recorder input: E K (CW, D/T, "copy-once", x 0 ), Xi 
30 Recorder output: E K (CW, D/T, "copy-once", xb), x 2 

This time the comparison of Xo and x 2 will reveal that the copy is legitimate. If, 
however, the 1 st generation copy is the input to the recorder, the output will be 
illegitimate since f ( f (xo) ) = X3. Note that the XECMs are modified without 
consideration of the number of modifications already made. 

35 

In CA systems, the D/T stamp field allows detection of copies made 
by a pirated recorder. When a card detects an "old" XECM that has not been 
modified, it will consider it to be a pirate copy. In CP systems, the DyT stamp can 
be used to assign limited lifetime to prerecorded media and authorized copies 
40 made from them. 
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A very important feature of the "XECM modification" scheme is that 
it gives the content distributors (broadcasters and publishers) complete freedom 
in choosing their encryption algorithm for creating the XECMs. Hence, although 
5 the copy protection system is constructed as an extension of the CA systems, it is 
"decoupled". The only requirement is to use the common structure for the XECM. 

As described below, the XECM originating at the content source has 
two sections: Private and Mandatory. The Private section contains fields that are 
10 privately defined by the operators of CA and CP systems. The Mandatory section 
contains three fields that must be included in all XECMs. 

The fields in the Private section of the XECM include: XECMJd 
(Unique identifier for the Extended Entitlement Control Message), XECMJength 

15 (an 8-bit field specifying the number of bytes in the XECM), formatjdentifier (a 
32-bit field that identifies the registration authority that assigns values to the 
providerjndex field), providerjndex (a 16-bit field that identifies the content 
provider), program_event_id (a 24-bit field that identifies a particular TV program 
or event), transport_stream_id (a 16-bit field that identifies the Transport Stream 

20 where the event is being carried), source Jd (a 16-bit field that identifies uniquely 
the particular service where the event is being transmitted), eventjd (a 14-bit 
field that identifies uniquely a particular event within a given service of this 
Transport Stream), start_time (a 32-bit field indicating the event start time), 
length_in_seconds (a 20-bit field indicating the length of the event), tit!e__segment 

25 (the first 1 0 characters of the English title for the event that this message 
describes), event _price (a BCD field which indicates the cost of the event), 
scrambling_key (a 64-bit key necessary for de-scrambling the video and audio 
signals for the event under consideration), descriptors Jength (the total length of 
the descriptor list that follows the descriptors). The Mandatory section of the 

30 XECM include: CCI — Copy Control Information (CGMS bits, APS trigger bits and 
Digital Source bit), copy_indicator_initial_value (a random bit sequence) and 
copyjndicator (a bit sequence equal to copyJndicatorjnitiaLvalue). 

DTV 14 is the final destination of the digital content 40 for viewing. 

35 It receives the scrambled AA/ stream from a source (broadcast/cable head-end, 
satellite, cable STB, DBS STB or playback device) and transmits it directly to the 
smart card 30. Smart card 30 checks if the content is legitimate. For example, if 
it receives a broadcast PPV movie, an OSD prompts the consumer to initiate a 
purchase offer before the movie starts. If the movie is purchased, a record is 

40 stored in the card. The card then recovers the scrambling keys and descrambles 
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the stream- The information about the event (price, start time, length, etc.) 
contained in the XECMs is used to generate the purchase offer. Finally, DTV 14 
outputs the same stream it receives. 

If a movie is to be recorded, the DVCR detects and modifies the 
XECMs. In addition, the Transport Scrambling Control (TSC) bits in the transport 
packet header can be checked to see if the content is scrambled. 
If the content is not scrambled, it is copied as is. In general, every time a 
scrambled movie is copied, its XECMs are modified once again. This allows the 
smart card to determine how many times the original movie has been copied. 
Optionally, the XECM modification functionality can be assigned to a smart card 
inserted to the recorder. In this case, the recorder needs to have a smart card 
reader. 

While the invention has been described in detail with respect to 
numerous embodiments thereof, it will be apparent that upon reading and 
understanding of the foregoing, numerous alterations to the described 
embodiment will occur to those skilled in the art and it is intended to include such 
alterations within the scope of the appended claims. 
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Claims 

1 . A method for copying a program having a scrambled program content 
component and an encrypted control component comprising: 

(a) receiving, in a recording apparatus, said program; 

(b) attaching a data item to said encrypted control component, said 
data item indicating that said program has been copied; 

(c) encrypting said encrypted control component and said data item to 
generate a nested control component; and 

(d) recording said program content component and said nested control 
component. 

2. The method of Claim 1 wherein the steps of receiving, attaching and 
encrypting are performed in a smart card coupled to said recording 
apparatus. 

3. The method of Claim 2 wherein said encrypted control component 
comprises copy control information, a descrambling key associated with 
said scrambled program content component. 

4. The method of Claim 3 wherein said copy control information indicates one 
of never-copy state and copy-once state. 

5. The method of Claim 4 wherein said encrypted control component is 
encrypted using a global public key. 

6. The method of Claim 5 wherein said nested control component is 
encrypted using said global public key. 
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The method of Claim 6 wherein said global public key is associated with 
said smart card, said smart card having a corresponding private key stored 
therein. 

The method of Claim 7 wherein said encrypted control component further 
comprises purchase information comprising channel identification data, 
event identity data, date and time stamp data, and billing data. 

The method of Claim 8 wherein said smart card comprises a card body 
with a plurality of terminals arranged on a surface of said card body in 
accordance with one of ISO 7816 and PCMCIA card standards. 

The method of Claim 9 wherein said recording apparatus is a digital video 
cassette recorder. 

The method of Claim 10 wherein said recording apparatus is a recordable 
DVD apparatus. 

A method for managing access to a copy of a restricted program, said 
method comprising: 

(a) receiving said restricted program in a processing apparatus, said 
restricted program having a scrambled program content component 
and a nested control component, said nested control component 
being encrypted; 

(b) decrypting said nested control component to obtain an encrypted 
control component and a data item, said data item indicating that 
said restricted program has been copied; 

(c) decrypting said encrypted control component to obtain a 
descrambling key and copy control information; 
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(d) comparing said copy control information and said data item to 
determine if said copy is valid; and 

(e) descrambling said program content component, using said 
descrambling key in response to a determination that said copy is 
valid. 

The method of Claim 12 wherein said encrypted control component and 
said nested control component are encrypted using a global public key. 

The method of Claim 1 3 wherein the steps of receiving, decrypting, 
comparing and descrambling are performed in a smart card coupled to 
said processing apparatus, said steps of decrypting employ a private key 
stored in said smart card and associated with said global public key. 

The method of Claim 14 wherein said encrypted control component further 
comprises purchase information comprising channel identification data, 
event identity data, date and time stamp data, and billing data. 

The method of Claim 15 wherein said purchase information comprises the 
cost of said program, said method further comprising: 

(a) deducting the cost of said program from a cash reserve stored in 
said smart card to determine a calculated cash reserve; 

(b) descrambling, in said smart card, said scrambled program content 
component using said descrambling key in response to having a 
positive calculated cash reserve; and 

(c) passing said descrambled transmitted event to said video 
processing apparatus. 

The method of Claim 16 wherein said cash reserve is downloaded in an e- 
cash certificate message from an automatic teller machine. 
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18. The method of Claim 17 wherein said processing apparatus is one of a 
digital video cassette recorder/player and a DVD recorder/player. 

19. The method of Claim 1 8 wherein said smart card comprises a card body 
with a plurality of terminals arranged on a surface of said card body in accordance 
with one of ISO 7816 and PCMCIA card standards. 

20. A method for managing access to a recorded copy of a restricted program 
using a smart card coupled to a video processing apparatus comprises: 

(a) transferring, from a bank, a cash reserve to said smart card; 

(b) receiving, in said smart card, said recorded copy of said restricted 
program from said video processing apparatus, said restricted 
program having a scrambled audio/video component and a nested 
control component, said nested control component being encrypted; 

(c) decrypting said nested control component to obtain an encrypted 
control component and a data item, said data item indicating that 
said restricted program has been copied; 

(d) decrypting said encrypted control component to obtain a 
descrambling key, copy control information and purchase 
information; 

(e) comparing said copy control information and said data item to 
determine if said copy is valid; 

(f) verifying that the cost of said restricted program is less than the 
stored cash reserve and deducting the cost of said restricted 
program from said stored cash reserve; 

(g) descrambling said audio/video component, using said descrambling 
key. 
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V. Reasoned statement under Article 35(2) with regard to novelty, inventive step or industrial 
applicability; citations and explanations supporting such statement 

1. Statement 



Novelty (N) 


Yes: 


Claims 


1-20 




No: 


Claims 




Inventive step (IS) 


Yes: 


Claims 


1-20 




No: 


Claims 




Industrial applicability (IA) 


Yes: 


Claims 


1-20 




No: 


Claims 





2. Citations and explanations 
see separate sheet 

VII. Certain defects in the international application 

The following defects in the form or contents of the international application have been noted: 
see separate sheet 
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1. Concerning Section V - Articles 33(2) and 33(3) PCT 

The following documents are cited: 
Dl: EP-A-0 912 952; 
D2: EP-A-0 763 936; 
D3 : EP-A-0 714 204; 
D4: EP-A-0 858 184; 
D5: FR-A-2 732 537. 

Dl discloses recording of encrypted digital data, wherein 
scrambled data accompanied by an encrypted control word is 
received, the control word is decrypted and re-encrypted to a 
different control word. 

In the context of digital video recording, D2 (Figs. 10, 11 and 
related text passages) discloses reception of scrambled data 
accompanied by encrypted control information, decrypting and 
modifying the control information, and re-encrypting the 
modified control information. 

In the same context, D3 (abstract) discloses reception of a 
scrambled bitstream accompanied by an encrypted keystream, whe- 
rein in a recording mode the keystream is accordingly modified 
and recorded in an encrypted format mixed with the bitstream. 

D4 (abstract) discloses replacing an entitlement control message 
(ECM) received along with scrambled digital data with a trans- 
formed entitlement control message. 

D5 also discloses re-encrypting control information received 
along with digital video data. 

2.1. Claim 1 

None of the presently available documents appears to disclose 
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features (b) and (c) of claim 1 on file, which features pertain 
to attaching a data item indicative of a copy status of a pro- 
gram to a received encrypted control component, whereafter 
encryption is applied to the encrypted control component with 
the data item attached to generate a nested control component. 
Accordingly, claim 1 meets the requirements of novelty and 
inventive step set out in Articles 33(2) and 33(3) PCT. 

2.2. Claims 12, 20 

Claims 12 and 2 0 provide the inverse of the method defined in 
claim 1 and thus are linked to the novel and inventive concept 
of claim 1. Accordingly, claims 12 and 20 meet the requirements 
of novelty and inventive step set out in Articles 33(2) and 
33(3) PCT. 

3* Concerning Section VII: Description and formal belongings 

a) 

The additional subject-matter provided by claims 8 and 19 
pertains to features of an apparatus rather than to method 
steps. Accordingly, doubt is cast upon the claims' intended 
scope of protection, contrary to the requirements set out in 
Art. 6 PCT. 

b) 

Contrary to the requirements of Rule 5.1(a) (ii) PCT, the rele- 
vant background art disclosed in the documents Dl to D5 
identified above is not mentioned in the description, nor are 
these documents identified therein. 
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